{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,20]],"date-time":"2026-05-20T21:12:03Z","timestamp":1779311523223,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":19,"publisher":"ACM","license":[{"start":{"date-parts":[[2011,2,12]],"date-time":"2011-02-12T00:00:00Z","timestamp":1297468800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2011,2,12]]},"DOI":"10.1145\/1947940.1948057","type":"proceedings-article","created":{"date-parts":[[2011,3,4]],"date-time":"2011-03-04T08:14:52Z","timestamp":1299226492000},"page":"565-568","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":12,"title":["Evaluation of web application security risks and secure design patterns"],"prefix":"10.1145","author":[{"given":"Asish Kumar","family":"Dalai","sequence":"first","affiliation":[{"name":"National Institute of Technology Rourkela, Odisha, India"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sanjay Kumar","family":"Jena","sequence":"additional","affiliation":[{"name":"National Institute of Technology Rourkela, Odisha, India"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2011,2,12]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Security design pattern, tech report g031","author":"Blakely B.","year":"2004","unstructured":"B. Blakely and C. Heath. Security design pattern, tech report g031. OpenGroup, 2004."},{"key":"e_1_3_2_1_2_1","volume-title":"PLoP","author":"Braga A. M.","year":"1998","unstructured":"A. M. Braga, C. M. F. Rubira, and R. Dahab. Tropyc: A pattern language for cryptographic software. PLoP, 1998."},{"key":"e_1_3_2_1_3_1","volume-title":"PLop","author":"Brown F. L.","year":"1999","unstructured":"F. L. Brown and E. B. Fernandez. The authenticator pattern. PLop, 1999."},{"key":"e_1_3_2_1_4_1","volume-title":"Secure Design Patterns","author":"Dougherty C.","year":"2009","unstructured":"C. Dougherty, K. Sayre, R. C. Seacord, D. Svoboda, and K. Togashi. Secure Design Patterns. Software Engineering Institute, 2009."},{"key":"e_1_3_2_1_5_1","volume-title":"PLop","author":"Fernandez E. B.","year":"2001","unstructured":"E. B. Fernandez and R. Pan. A pattern language for security models. PLop, 2001."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCGI.2007.57"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.5555\/186897"},{"key":"e_1_3_2_1_8_1","volume-title":"PLoP","author":"Hafiz M.","year":"2005","unstructured":"M. Hafiz. Secure pre-forking- a pattern for performance and secuirty. PLoP, 2005."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30191-2_11"},{"key":"e_1_3_2_1_10_1","volume-title":"Secure system development with uml","author":"Jurens J.","year":"2004","unstructured":"J. Jurens. Secure system development with uml. Springer, 2004."},{"key":"e_1_3_2_1_11_1","volume-title":"Final technical report: Security pattern for web application development","author":"Kienzle D. M.","year":"2002","unstructured":"D. M. Kienzle and M. C. Elder. Final technical report: Security pattern for web application development, 2002. http:\/\/www.scrypt.net\/celer\/securitypatterns\/final."},{"key":"e_1_3_2_1_12_1","volume-title":"11th European Conference on Pattern Language of Programs (EuroPLoP). PLop","author":"Morrision P.","year":"2006","unstructured":"P. Morrision and E. B. Fernandez. Securing the broken pattern. In 11th European Conference on Pattern Language of Programs (EuroPLoP). PLop, 2006."},{"key":"e_1_3_2_1_13_1","unstructured":"OWASP. Owasp top 10 application security risks-2010. http:\/\/www.owasp.org\/index.php\/Category: OWASP_Top_Ten_Project."},{"key":"e_1_3_2_1_14_1","volume-title":"E. Fernandez, J. I. Mehlau, and G. Pernull. A parten system for access control. 18th Annual IFIP WG 11.3 Working Conference on Data and Application Security","author":"T.","year":"2004","unstructured":"T. priebe, E. Fernandez, J. I. Mehlau, and G. Pernull. A parten system for access control. 18th Annual IFIP WG 11.3 Working Conference on Data and Application Security, 2004."},{"key":"e_1_3_2_1_15_1","unstructured":"Romanosky. Security design patterns. technical report. http:\/\/www.cgisecurity.com\/lib\/securityDesignPatterns.pdf 2001."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1415472.1415486"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.5555\/1076903"},{"key":"e_1_3_2_1_18_1","volume-title":"Best Practice and Strategy for J2EE, Web Service and Identity Management","author":"Steel C.","year":"2005","unstructured":"C. Steel, R. Nagappan, and R. Lai. Best Practice and Strategy for J2EE, Web Service and Identity Management. Prentice Hall, 2005."},{"key":"e_1_3_2_1_19_1","volume-title":"International Conference on Pattern Language of Programs. PLoP","author":"Yoder J.","year":"1997","unstructured":"J. Yoder and J. Barcalow. Architectural patterns for enabling application security. In International Conference on Pattern Language of Programs. PLoP, 1997."}],"event":{"name":"ICCCS '11: International Conference on Communication, Computing & Security","location":"Rourkela Odisha India","acronym":"ICCCS '11"},"container-title":["Proceedings of the 2011 International Conference on Communication, Computing & Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1947940.1948057","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1947940.1948057","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,20]],"date-time":"2026-05-20T20:30:26Z","timestamp":1779309026000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1947940.1948057"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,2,12]]},"references-count":19,"alternative-id":["10.1145\/1947940.1948057","10.1145\/1947940"],"URL":"https:\/\/doi.org\/10.1145\/1947940.1948057","relation":{},"subject":[],"published":{"date-parts":[[2011,2,12]]},"assertion":[{"value":"2011-02-12","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}